netscaler with unified gateway › en-us › netscaler-gateway › ... · dropbox provides file...

16
NetScaler with Unified Gateway Configuring Dropbox Abstract Configuring Dropbox for SSO enables administrators to manage their users using NetScaler.

Upload: others

Post on 07-Jul-2020

8 views

Category:

Documents


0 download

TRANSCRIPT

Page 1: NetScaler with Unified Gateway › en-us › netscaler-gateway › ... · Dropbox provides file hosting service that helps users to save files in one central place and access them

NetScaler with Unified Gateway

Configuring Dropbox

Abstract Configuring Dropbox for SSO enables administrators to manage their users using NetScaler.

Page 2: NetScaler with Unified Gateway › en-us › netscaler-gateway › ... · Dropbox provides file hosting service that helps users to save files in one central place and access them

NetScaler with Unified Gateway 1

Contents ABSTRACT ....................................................................................................................................................................... 0

CONTENTS ..................................................................................................................................................................... 1

DISCLAIMER (DOCUMENTATION) ................................................................................................................................... 2

PREFACE ......................................................................................................................................................................... 3

OVERVIEW ...................................................................................................................................................................... 4

CONFIGURING DROPBOX FOR SINGLE SIGN-ON .............................................................................................................. 5

CONFIGURING NETSCALER FOR SINGLE SIGN-ON ......................................................................................................... 10

TESTING THE CONFIGURATION ..................................................................................................................................... 14

Page 3: NetScaler with Unified Gateway › en-us › netscaler-gateway › ... · Dropbox provides file hosting service that helps users to save files in one central place and access them

NetScaler with Unified Gateway 2

Disclaimer (Documentation) This document is furnished "AS IS." Citrix Systems, Inc. disclaims all warranties regarding the contents of this document, including, but not limited to, implied warranties of merchantability and fitness for any particular purpose. This document may contain technical or other inaccuracies or typographical errors. Citrix System, Inc. reserves the right to revise the information in this document at any time without notice. This document and the software described in this document constitute confidential information of Citrix Systems, Inc. and its licensors, and are furnished under a license from Citrix Systems, Inc.

Citrix Systems, Inc., the Citrix logo, and Citrix Provisioning Services are trademarks of Citrix Systems, Inc. and/or one or more of its subsidiaries, and may be registered in the United States Patent and Trademark office and in other countries. All other trademarks and registered trademarks are property of their respective owners.

Microsoft and Windows are either registered trademarks or trademarks of Microsoft Corporation in the United States and/or other countries.

Page 4: NetScaler with Unified Gateway › en-us › netscaler-gateway › ... · Dropbox provides file hosting service that helps users to save files in one central place and access them

NetScaler with Unified Gateway 3

Preface This section provides an overview about the information included in this guide.

Intended Audience The information in this guide is intended for the System Administrators.

Document Conventions The following table lists various conventions used in this guide.

Table 1: Document conventions used in this guide

Convention Description

Bold Used for names of interface elements (such as names of fields, panes, windows, menus, buttons, dialog boxes) and what the user specifically selects, clicks, presses, or types.

Note Used to highlight information that is important.

Page 5: NetScaler with Unified Gateway › en-us › netscaler-gateway › ... · Dropbox provides file hosting service that helps users to save files in one central place and access them

NetScaler with Unified Gateway 4

Overview The Citrix NetScaler application delivery controller (ADC) helps to load balance, accelerate, optimize, and secure enterprise applications.

Dropbox provides file hosting service that helps users to save files in one central place and access them anytime, anywhere using any devices.

You can connect Dropbox with NetScaler by using your company's credentials to log on to your account via Single Sign-On (SSO).

Terminology An Identity Provider (IdP) provides authentication module to verify users with their corporate network. A Service Provider (SP) supports receiving SSO SAML assertions.

The following table lists various terms that are used alternatively for completing configurations for service providers and identity providers. Table 2: Terminology used for SP and IdP configurations

Service Provider (SP) Identity Provider (IdP) Identity Provider Issuer Issuer Name SP Entity ID Service Provider ID SP Assertion Consumer Service URL

Assertion Consumer Service URL

Page 6: NetScaler with Unified Gateway › en-us › netscaler-gateway › ... · Dropbox provides file hosting service that helps users to save files in one central place and access them

NetScaler with Unified Gateway 5

Configuring Dropbox for Single Sign-On Configuring Dropbox for SSO enables administrators to manage their users using NetScaler. Users can securely log on to Dropbox using their enterprise credentials.

To configure Dropbox for SSO through SAML, follow the steps below: 1. In a browser, type https://www.dropbox.com/login and press enter:

2. To log on to your Dropbox account, type your email address and click the Log in with Dropbox credentials link.

Page 7: NetScaler with Unified Gateway › en-us › netscaler-gateway › ... · Dropbox provides file hosting service that helps users to save files in one central place and access them

NetScaler with Unified Gateway 6

3. Enter the password and click Sign in.

4. On the Home page, in the left pane, click Admin console.

5. Click Settings.

Page 8: NetScaler with Unified Gateway › en-us › netscaler-gateway › ... · Dropbox provides file hosting service that helps users to save files in one central place and access them

NetScaler with Unified Gateway 7

6. On the Settings page in the right pane, under Authentication section, click Single sign-on.

Page 9: NetScaler with Unified Gateway › en-us › netscaler-gateway › ... · Dropbox provides file hosting service that helps users to save files in one central place and access them

NetScaler with Unified Gateway 8

7. On the Single sign-on page, at the upper right corner, click the button to select a mode > Optional.

Note:

Optional mode enables users to sign in using their SSO or Dropbox user name and password. As an administrator, you can select this option to gradually implement SSO without interrupting the existing activities of the team.

Required mode mandates users to sign in to their central identity provider using their SSO password to access Dropbox. As an administrator, you can select this option to switch over to your identity provider for authentication.

8. On the Single sign-on page, click the respective link to specify the following information:

i. Identity Provider sign-in URL- enter the IdP URL of your NetScaler app: https://<netscalerinstance>.com/saml/login

ii. Identity Provider sign-out URL- enter https:<netscalerinstance>.com/ cgi/tmlogout Note: This step is optional.

Page 10: NetScaler with Unified Gateway › en-us › netscaler-gateway › ... · Dropbox provides file hosting service that helps users to save files in one central place and access them

NetScaler with Unified Gateway 9

iii. X.509 certificate - click the certificate link and browse to the folder where you saved the Identity provider certificate in .pem format. Add the IdP certificate.

Note: To upload your IdP certificate, follow the steps below: a. Remotely access your NetScaler instance using PuTTY. b. Navigate to /nsconfig/ssl folder (using shell command cd

/nsconfig/ssl) and press Enter. c. Type cat <certificate-name> and press Enter.

d. Copy the text between -----BEGIN CERTIFICATE----- and -----END

CERTIFICATE-----

iv. SSO sign-in URL – to copy the URL, click Copy link.

v. Click Apply Changes.

You have completed the required configuration on the service provider which is in this case – Dropbox.

Page 11: NetScaler with Unified Gateway › en-us › netscaler-gateway › ... · Dropbox provides file hosting service that helps users to save files in one central place and access them

NetScaler with Unified Gateway 10

Configuring NetScaler for Single Sign-On For configuring NetScaler for Dropbox, you must retrieve and set specific values such as assertion consumer URL, and entity ID.

To configure NetScaler for single sign on through SAML, complete the following steps:

1. Connect to VPN using NetScaler with Unified Gateway.

2. Log on to NetScaler using your user name and password.

3. Click the Configuration > Unified Gateway.

Page 12: NetScaler with Unified Gateway › en-us › netscaler-gateway › ... · Dropbox provides file hosting service that helps users to save files in one central place and access them

NetScaler with Unified Gateway 11

4. In the Dashboard area, click the configured NetScaler Gateway appliance.

5. Click the edit icon for Applications section.

6. For adding a SaaS application, click the plus icon that appears in the edit mode.

7. Click SaaS > Continue.

Page 13: NetScaler with Unified Gateway › en-us › netscaler-gateway › ... · Dropbox provides file hosting service that helps users to save files in one central place and access them

NetScaler with Unified Gateway 12

8. Click Choose from Catalog.

9. In the Choose from Catalog list, click Dropbox.

10. Click Continue. 11. In the Create Application from Template section, type the name of your SaaS application,

in this case Dropbox, and relevant comments.

Page 14: NetScaler with Unified Gateway › en-us › netscaler-gateway › ... · Dropbox provides file hosting service that helps users to save files in one central place and access them

NetScaler with Unified Gateway 13

12. In the Enter URL box, enter your custom URL that you use for accessing Dropbox.

13. In the Service Provider ID box, type a unique name as: Dropbox 14. SP Certificate Name field is optional for Dropbox as adding the SP certificate name is

optional for Dropbox. 15. In the Signing Certificate Name list select an appropriate certificate that will be used for

signing SAML requests and responses. Note: This is the X.509 certificate or the Identity provider certificate in. pem format that you uploaded while configuring Dropbox for SSO.

16. In the Issuer Name field type a unique issuer name. 17. Click Continue. 18. Click Done.

You have completed the NetScaler configuration for Dropbox.

Page 15: NetScaler with Unified Gateway › en-us › netscaler-gateway › ... · Dropbox provides file hosting service that helps users to save files in one central place and access them

NetScaler with Unified Gateway 14

Testing the Configuration

Testing the IdP Initiated Flow To test the IdP initiated configuration, follow the steps below:

1. Access the IdP URL.

2. Log on to NetScaler appliance using your enterprise credentials.

3. Click Clientless Access.

4. On the home page, click Apps tab.

5. Click Dropbox. Your Dropbox profile appears. You have completed testing the IdP initiated flow.

Page 16: NetScaler with Unified Gateway › en-us › netscaler-gateway › ... · Dropbox provides file hosting service that helps users to save files in one central place and access them

NetScaler with Unified Gateway 15

Locations Corporate Headquarters | 851 Cypress Creek Road Fort Lauderdale, FL 33309, United States Silicon Valley | 4988 Great America Parkway Santa Clara, CA 95054, United States © 2018 Citrix Systems, Inc. All rights reserved. Citrix, the Citrix logo, and other marks appearing herein are property of Citrix Systems, Inc. and/or one or more of its subsidiaries, and may be registered with the U.S. Patent and Trademark Office and in other countries. All other marks are the property of their respective owner(s).